catalinv-ncc opened a new pull request, #19171: URL: https://github.com/apache/nuttx/pull/19171
drivers/eeprom/i2c_xx24xx: Integer Overflow in I2C EEPROM ee24xx_seek() The function seek which allows the user to move the cursor to a particular offset in order to read and write from EEPROM storage does not validate the offset is valid. Later, this can cause an out-of-bounds reads or writes. Note that newpos may store a large value, larger than the size of the EEPROM. Similar change in the SPI driver. Tested locally, builds fine. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
